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Embedded cryptographic system 

FIELD OF THE INVENTION 

5 

The present invention relates to cryptographic systems. More particularly the invention 
relates to an embedded cryptographic system and methods for creating and operating 
the system for carrying out cryptographic operations. 

10 BACKGROUND OF THE INVENTION 

Secure data transfer is commonly achieved by the use of cryptographic algorithms. 
Embedded cryptographic systems, subsystems and devices are used in many applications 
such as banking and the creation of virtual networks. Wireless LAN network adapters, cash 
15 dispensers (ATM), Smartcard Cellphones (GSM) and Gambling devices are examples which 
can include embedded cryptographic systems. The term embedded cryptographic system is 
used for embedded systems, subsystems or services and devices, which are used for 
cryptographic tasks. Such cryptographic systems use an input stream in order to create 
from it an output stream. 

20 

While embedded cryptographic devices typically require very high performance, the 
algorithms are often implemented in hardware (rather than software) towards performance 
advantage. Embedded cryptographic systems are comprised of computer software and/or 
hardware or electronics. Their interfaces are very limited for security reasons. Embedded 
25 cryptographic devices are very difficult to upgrade. An upgrade generally requires trusted 
and expert field service agents to physically access the embedded cryptographic device. 
Doing so is time consumptive and expensive. 

At the same time cryptographic algorithms are evolving. This evolution recently took a 
30 quantum leap due to the request of the US National Institute of Standards (NIST) for a 

replacement cipher respectively an advanced encryption standard (AES) for DES, the most 
commonly used block cipher, in the near future, embedded cryptographic systems will offer 
the choice between triple DES (DES run three times) and the winner of the AES 
competition, which is now known to be Rijndael. The advantage of the former is that it is well 
35 tested. The advantage of the latter is that it is faster and more flexible. 
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The problem is that any cipher algorithm and therefore also the winner of the AES 
competition (Rijndael), could be suddenly crypt-analyzed and broken. Should such a break 
be a catastrophic break, then the risk of finding individual keys and therefore the risk of 
unauthorized deciphering and enciphering secure information is very high. Attacking of 
5 cryptographic equipment is described by Ross Anderson and Markus Kuhn in "Tamper 
Resistance - a Cautionary Note", The Second USENIX Workshop on Electronic Commerce 
Proceedings, Oakland, California, November 18-21 1996, pages 1-11, ISBN 1-880446-83-9. 
A successful attack of accessible cryptographic systems should not be disastrous for the 
whole system. The authors conclude that most current electronic wallet systems use 
10 symmetric cryptography with universal secrets stored in retailers' terminals and that they 
should be designed to keep on working after these secrets have been compromised - such 
as by supporting a fallback processing mode. 

In the case of physical penetration of a cryptographic system, there are self-destruct 
15 mechanisms known, which allow, for example, to erase the key at the penetrated system. If 
the algorithm of a series of cryptographic systems is broken, then it is necessary to have a 
possibility to shut down the operation of the systems of this series or to switch to a fallback 
mode. A cryptographic system is broken as soon as some one discovers a fast algorithm for 
finding individual secret keys. The result of breaking an algorithm could be potentially 
20 disastrous because the embedded cryptographic systems are implemented in an increasing 
number of applications with secret information. If a trusted and expert field service agent 
has to get physically access to all the systems with a broken cryptographic system, then the 
harm due to illegally acquired information and illegally sent information or instructions could 
be high, because of the long time needed for the replacement of all the broken embedded 
25 cryptographic systems. 

In the field of rather complex systems a concept for secure shutting down of mobile services 
is described by Christian Tschudin "Apoptosis the Programmed Death of Distributed 
Services", in J. Vitek and C. Jensen, editors, Secure Internet Programming - Security 

30 Issues for Mobile and Distributed Objects, pages 253-260, Springer, 1999. Active networks 
with services run by mobile code have to have the functionality of creating and ending 
services. The apoptosis concept of self-destructing mobile services is borrowed from cell 
biology and designates there the programmed cell death. The apoptosis process is 
suggested to start as for cells by two different ways. A service may depend on a continuous 

35 stream of credentials or positive signals. Once these credentials run out, the service will 

shut down. According to the second way a negative signal causes the service to shut down. 
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The apoptosis entry point of a mobile service would be a primary target for an attack. 
Therefore the apoptosis concept should be implemented with cryptographic security 
functions. Cryptographic security functions are described by J. Riordan and B. Schneter, 
Environmental Key Generation Towards Clueless Agents, in G. Vigna, editor, Mobile Agents 
and Security, volume 1419 of LNCS, pages 15-24, Springer, 1998. The shut down could be 
induced by an apoptosis activator. Applying the above mentioned apoptosis concept does 
not change the disadvantage that a system administrator or a security service provider has 
to induce the shut down procedure. 
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SUMMARY OF THE INVENTION 

In accordance with the present invention, there is now provided a method for stopping 

cryptographic operations with a first cryptographic algorithm and preferably reverting to a 

second cryptographic algorithm. A cryptographic system or a device is configured in such a 

way that it enables stopping the cryptographic operations with the first cryptographic 

algorithm and preferably reverting to the second cryptographic algorithm. 

The notation is used as follows: 

P,-is a plaintext (un-enciphered), 

Ki is a key for a enciphering algorithm, and 

d is the plaintext P, enciphered with the key K. 

Symmetric cryptographic systems are using the same key for deciphering the enciphered 
text d . 

It is assumed that if a person finds at least one particular key K}then it is most likely that this 
person has broken the cryptographic algorithm. In order to prevent that a particular key is 
just found by change, breaking the cryptographic algorithm can be bound to finding more 
then one particular key. By knowing a fast algorithm for finding keys it is possible to find any 
individual key used to create a given enciphered text. Therefore the whole series of 
embedded cryptographic systems with the same cryptographic algorithm is attacked. The 
security of the information handled by any specific embedded cryptographic system is no 
more guaranteed. 

In a preferred embodiment of the present invention, added to each embedded cryptographic 
system is at least one test plaintext/ciphertext pair, respectively a series of test 
plaintext/ciphertext pairs {(P,-/G)}, for which the key respectively keys have been destroyed 
or stored in a very safe place. If at some later date, at least one apoptosis key K, is 
presented to the cryptographic system which has the property that C, is the enciphered 
image of P,- under K h then the algorithm could be broken and should not be used any more. 
Instead a more conservative algorithm preferably Triple DES should be used. The method 
for changing the ciphering by an embedded cryptographic system preferably includes the 
step of checking whether at least one test ciphertext C-, is the enciphered image of a 
corresponding test plaintext P, under a apoptosis key Ki and the step of switching off the 
used cryptographic mode or the step of switching to an other cryptographic mode in case of 
a positive checking result. In order to enable the step of checking a protocol has to define a 
control stream with at least one key to be checked. The checking will be done as soon as 
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such a control stream is received by the cryptographic system. 

The steps of checking and switching can be implemented in the cryptographic system by 
software or by hardware. The cryptographic system needs to include checking means for 
5 checking whether the test ciphertext C, is the enciphered image of the test plaintext P,- under 
a received key K-, . In addition to the checking means the cryptographic system also has to 
include switching means for switching off the used cryptographic mode or for switching to an 
other cryptographic mode in case of a positive checking result. The cryptographic system 
includes memory means for storing at least one plaintext/ciphertext pair {(P,-/C;)}. 

10 

An advantage of this solution is that there is no need for controlling respectively trusting the 
manufacturer or a security service. The embedded cryptographic system can receive the 
key or a collection of keys {Ki} from anywhere. If the test ciphertext C; stored at the 
cryptographic system is under K/the enciphered image of the test plaintext P/also stored at 

15 the system, then there is an objective risk for the cryptographic system. The check needed 
by the cryptographic system includes the step of enciphering at least one test plaintext P, 
with the received key Kand the step of controlling whether the enciphered text corresponds 
to the stored test ciphertext d. It will be understood that instead or in addition to enciphering 
the stored plaintext Pi the check could as well be done by deciphering the enciphered text 

20 d. The apoptosis key Ki is most likely the result of breaking the algorithm. Therefore the 
embedded cryptographic system can switch itself of or switch from the possibly broken first 
algorithm to a secure second one. 

Since the cryptographic system can accept the key or a collection of keys {Ki} from 
25 anywhere or anyone, keys can be sent by the manufacturer of the cryptographic system, by 
a security provider or even by hackers who are proud to have broken the algorithm. The at 
least one test plaintext/ciphertext pair, respectively a series of test plaintext/ciphertext pairs 
{ (Pi / Cj) } , for which the key respectively keys have been destroyed or stored in a very safe 
place will be published, so that any person can try to break the algorithm and find the 
30 corresponding keys. Instead of or in addition to the publishing, the test plaintext/ciphertext 
pairs could be delivered to a limited group of specialists, who are trying to brake the 
algorithm. If the algorithm is broken by a hacker who does not present the key for the at 
least one test plaintext/ciphertext pair, then it is advantageous for the manufacturer to have 
the key, respectively keys, stored. The manufacturer or the security provider has to release 
35 or broadcast the key to the public to activate the switching of the cryptographic system. In 
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case it is assumed but not evident whether a given cryptographic algorithm has been 
broken, then the switching can only be done if the key has not been destroyed. In the other 
case where it is known how a given cipher can be broken, anyone can recalculate the key 
based on a publicly known test plaintext/ciphertext pair and release or broadcast the key to 
the public thereby activating the switching mechanism. When it becomes evident that a 
cipher has been broken, one should find out whether the algorithm to break a cipher is 
known or not and whether the break is catastrophic. 

Instead of destroying the keys used to create test plaintext/ciphertext pairs, collection of 
plaintext/ciphertext pairs {{P, = Q)} can be created so that no one person knows any of the 
Ki. This is done using a method called multi-party computation. Since the multi-party 
computation is sufficiently painful, it is probably more easy just to get a bunch of people 
together in a Faraday cage and to melt the computer afterwards. This procedures is already 
used to prevent theft of important secrets. 

The cryptographic system includes input/output means for receiving input streams and 
sending output streams wherein said input streams are transformed to said output 
streams by cryptographic operations. The cryptographic system should as well be able 
to accept a control stream including at least one apoptosis key K,. This control stream 
can be received by receiving means for receiving control streams. Instead of accepting 
the control stream at a special interface it could as well be accepted at the same 
input/output means as the input streams are accepted. The control stream is to be 
defined by a protocol. In order to make sure that the sent apoptosis keys are relevant 
for the cryptographic system receiving it, the keys can be sent with the corresponding 
plaintext/ciphertext pairs. 

Brief Description of the Drawings 

Preferred embodiments of the present invention will now be described with reference to the 
accompanying drawings, in which: 

Fig. 1 is a block-diagram view of a cryptographic system for carrying out cryptographic 
operations, and 

Fig. 2 is a block-diagram view of the cryptographic system of Fig. 1 with an interface. 

DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS 

Fig. 1 shows a cryptographic system for carrying out cryptographic operations. The 
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system comprises a first cryptographic algorithm means 2, which can be the Rijndael 
algorithm, for enabling the cryptographic operations. In general, the term cryptographic 
operation can be understood as a mathematical transformation on the represented form 
of data as to effect confidentiality, verifiable authenticity, integrity, temporality, 
non-reputability, et cetera executed in a manner as to resist adversarial alteration. 
In the embodiment according to Fig. 1 a secret first key is located within the first 
cryptographic algorithm means 2 and it will be used for ciphering data which is inputted 
through input line 2a. If the first cryptographic algorithm is not symmetric, then a special 
protocol or two separate input lines 2a - one for enciphering and one for deciphering - 
would make sure that the right algorithm is used. The cryptographic system receives 
input streams from input means 3 and sends output streams by output means 4. The 
input streams are transformed to output streams by the cryptographic operation. An 
input stream can be a plaintext or an enciphered text. The corresponding output stream 
is an enciphered text, respectively a deciphered text. 

Receiving means 5 are used to receive a control stream which is including at least one 
apoptosis key Ki. The receiving means 5 and the input means 3 could be the same 
means, wherein the distinction between an input stream and a control stream would 
have to be made by a defined protocol. The control stream is supplied to checking 
means 6. At least one test plaintext P,- and for each test plaintext P, a corresponding test 
ciphertext C, are preferably located within the checking means 6. If there is only one test 
plaintext P,then this test plaintext P, along with the apoptosis key K,oi a received 
control stream will be supplied through a further input line 2b to the first cryptographic 
algorithm means 2. The input of this further input line 2b is enciphered under the first 
cryptographic algorithm and with the apoptosis key K,. The resulting enciphered 
plaintext P, is supplied to the checking means 6 by an interconnecting means 2c. The 
checking means 6 performs a step of comparing the resulting enciphered plaintext P; 
with the stored test ciphertext C If the comparing shows correspondence then the 
checking means 6 triggers a switching means 7 to stop the ciphering by the first 
cryptographic algorithm means 2. A continued cryptographic operation can be enabled 
by switching to a second cryptographic algorithm means 8, which can be Triple DES or 
IDEA for example. Also possible is to apply a cascaded list of different cryptographic 
algorithm means and switch to them in the defined order. The resulting enciphered 
plaintext P/ is supplied to the checking means 6 by an interconnecting means 2c. In the 
embodiment according to Fig. 1 the secret second key is located within the second 
cryptographic algorithm means 8 and it will be used for ciphering data which is inputted 
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through input line 8a. 

The embodiments of Fig. 1 and 2 have one second cryptographic algorithm means 8. 
There could be more then one such second cryptographic algorithm means 8 wherein a 
5 ranking can be used to select further cryptographic algorithm means. Also, a cascading 
list of different cryptographic algorithm means can be applied. The selected second 
cryptographic algorithm means 8 could then be looked at being the first cryptographic 
algorithm means and an apoptosis key or set of keys for this new first cryptographic 
algorithm means could trigger switching to an other second cryptographic algorithm 
10 means. The checking means 6 would have to replace the test plaintext/ciphertext pairs 
of the initial first cryptographic algorithm by test plaintext/ciphertext pairs of the new first 
cryptographic algorithm. 

A cryptographic algorithm is not broken if just one particular key has been found without 
15 a fast algorithm to find any secret key. To prevent unnecessary stopping of still secure 
first cryptographic algorithms it is reasonable to ask for at least two apoptosis keys. The 
apoptosis keys of a control stream with two or more apoptosis keys K-, should preferably 
be assigned to corresponding test plaintext/ciphertext pairs Pi, &. If a control stream 
includes with each apoptosis key K, the corresponding test plaintext/ciphertext pairs P-„ 
20 d, then the assignment can be done by trying to find a test plaintext/ciphertext pair Pi, 
Q being equal to a particular one of the received plaintext/ciphertext pairs P h d. The 
checking will be done with the apoptosis key of this equal test plaintext/ciphertext pair 
P„ d . The stopping will only be triggered as soon as a given number - at least two - of 
apoptosis keys are found to be the correct keys of given test plaintext/ciphertext pairs 
25 Pi, &. A solution without assignment would check each apoptosis key with each test 

plaintext/ciphertext pair P h d . Such a solution would preferably use control streams just 
with apoptosis keys. It would be checked whether a test ciphertext d is the enciphered 
image of the corresponding test plaintext P,- under the first cryptographic algorithm when 
using a transmitted apoptosis key K,. 

30 

Fig. 2 shows the cryptographic system of Fig. 1 with an interface 9 to an external system or 
network 10. The interface 9 controls the data flow to the receiving means 5 and the input 
means 3 and from the output means 4. This data flow control will be done according to a 
defined protocol. 

35 

The present invention can be realized in hardware, software, or a combination of hardware 
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and software Therefore the expression "means" stands for hardware, software, or a 
combination of hardware and software. Any kind of computer system - or other apparatus 
adapted for carrying out the methods described herein - is suited. A typical combination of 
hardware and software could be a specialized cryptographic processor or a general purpose 
5 computer system with a computer program that, when being loaded and executed, controls 
the computer system such that it carries out the method described herein. The present 
invention can also be embedded in a computer program product, which comprises all the 
features enabling the implementation of the methods described herein, and which - when 
loaded in a computer system - is able to carry out these methods. 

10 

Computer software product or computer program in the present context means any 
expression, in any language, code or notation, of a set of instructions intended to cause a 
system having an information processing capacity to perform a particular function either 
directly or after either or both of the following a) conversion to another language, code or 
15 notation; b) reproduction in a different material form. 

In a preferred example of the present invention, there is provided a method for creating 
a cryptographic system, which can be altered from a remote site. The creation of this 
system comprises the following steps: 

20 implementing a first cryptographic algorithm enabling the cryptographic operations, 

selecting at least one test plaintext P,and enciphering each test plaintext P/with the first 
cryptographic algorithm and with a corresponding apoptosis key K; thereby generating a 
corresponding test ciphertext Gfor each test plaintext P,- , 
implementing at least one test plaintext Pi and for each test plaintext P,-the 

25 corresponding test ciphertext Q, 

implementing receiving means for receiving a control stream which is including at least 
one apoptosis key Ki , 

implementing checking means for checking whether the at least one test ciphertext & is 
the enciphered image of the corresponding test plaintext P, under the first cryptographic 
30 algorithm when using the apoptosis key Ki, 

implementing switching means for stopping the cryptographic operations with the first 
cryptographic algorithm, wherein the stopping by the switching means is triggered by the 
checking means. 



35 



In order to enable the operation in a fallback mode the method preferably further 
comprises the following steps: 
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implementing at least one second cryptographic algorithm, 

giving the switching means the functionality to switch to at least one second 

cryptographic algorithm. 

The manufacturer of a cryptographic system, which can be altered by sending apoptosis 
keys, will preferably publishing the at least one test plaintext P,and for each test 
plaintext Pi the corresponding test ciphertext C,. The key for such a test 
plaintext/ciphertext pair will be destroyed or stored in a very safe place. 

Now that the invention has been described by way of the preferred embodiment, various 
modifications and improvements will occur to those of skill in the art. Thus, it should be 
understood that the preferred embodiment has been provided as an example and not as a 
limitation. The scope of the invention is defined by the appended claims. 



